This plugin is a proof of concept for a maven plugin that can be used to validate the integrity of a maven repository. It does this by generating a lock file that contains the checksums of all the artifacts in the repository. The lock file can then be used to validate the integrity of the repository. This guards the supply chain against malicious actors that might tamper with the artifacts in the repository.

LicenseMIT
CategoriesMaven Plugins
Tagsplugingithubbuildbuild-systemmaven
HomePage https://github.com/chains-project/maven-lockfile
DateMar 25, 2023
Filespom (9 KB)  maven-plugin (35 KB)  View All
RepositoriesCentral
Ranking#729389 in MvnRepository (See Top Artifacts)
#5730 in Maven Plugins
VulnerabilitiesVulnerabilities from dependencies:
CVE-2023-2976
CVE-2020-8908

Note: There is a new version for this artifact

New Version0.3.2


Developers

NameEmailDev IdRolesOrganization
Martin WittlingerMartinWitt